Bernd Eckenfels writes:
> > Anyway, I was asking about the _algorithm_, not the source code. I can
> > hack little things like that myself, thankyouverymuch.
> I was talking to a german SecurID Salesperson about this. I asked fot the
> mathematical Algorithm (which PNG is used and which Hash. Asked about the
> internal Bit-Length and so on. All I got was the Answer:
> We dont publish this, since it would make SecurID more insecure.
> I was dicussing with him a big time, but he was unable to understand that
> secure Algortihms dont need the be secure. I realy hpe the developers of
> SecuID know that better and dont use a weak PNG and keep it secure just to
> be secure.
Did you see PeiterZ's critique of SecurID? Did you see their reply?
Hope dies last.